{"schema_version":"1.7.3","id":"MAL-2025-192304","published":"2025-12-04T19:12:07Z","modified":"2025-12-23T23:51:13.775307Z","summary":"Malicious code in elf-stats-northbound-sparkler-410 (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (f08736c2162a48e541984d90b3b871f1be3f37ce290cb43fce03b7af871d6804)\nThe package elf-stats-northbound-sparkler-410 was found to contain malicious code.\n\n## Source: ossf-package-analysis (39fe611033f6e72ecac7cebe84d95072a7c044f7e650b1afff65634c5af445ac)\nThe OpenSSF Package Analysis project identified 'elf-stats-northbound-sparkler-410' @ 3.0.0 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n","affected":[{"package":{"name":"elf-stats-northbound-sparkler-410","ecosystem":"npm","purl":"pkg:npm/elf-stats-northbound-sparkler-410"},"versions":["3.0.0","2.0.0"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/elf-stats-northbound-sparkler-410/MAL-2025-192304.json"}}],"database_specific":{"malicious-packages-origins":[{"import_time":"2025-12-04T19:35:56.916522817Z","modified_time":"2025-12-04T19:12:07Z","sha256":"39fe611033f6e72ecac7cebe84d95072a7c044f7e650b1afff65634c5af445ac","source":"ossf-package-analysis","versions":["3.0.0"]},{"import_time":"2025-12-05T20:39:36.908854201Z","modified_time":"2025-12-05T20:38:15Z","sha256":"f08736c2162a48e541984d90b3b871f1be3f37ce290cb43fce03b7af871d6804","source":"amazon-inspector","versions":["3.0.0"]},{"import_time":"2025-12-05T21:36:15.307426138Z","modified_time":"2025-12-05T21:10:10Z","sha256":"db8859481a9dc7603b839a9e72ab6058f3f4064149265f670a3afd4a0ea7f903","source":"amazon-inspector","versions":["2.0.0"]},{"id":"RLMA-2025-06245","import_time":"2025-12-23T20:39:00.079517141Z","modified_time":"2025-12-23T08:09:21Z","sha256":"658cca66ae91ae581c021fcfa3bf4b9a5efc2686b301ac3af339eab6c78e2757","source":"reversing-labs","versions":["2.0.0","3.0.0"]}]},"credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"},{"name":"ReversingLabs","contact":["https://www.reversinglabs.com"],"type":"FINDER"}]}